Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opensuse project vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2017-5930
The AliasHandler component in PostfixAdmin prior to 3.0.2 allows remote authenticated domain admins to delete protected aliases via the delete parameter to delete.php, involving a missing permission check.
Opensuse Leap 42.1
Opensuse Leap 42.2
Postfixadmin Project Postfixadmin
4.3
CVSSv2
CVE-2015-8010
Cross-site scripting (XSS) vulnerability in the Classic-UI with the CSV export link and pagination feature in Icinga prior to 1.14 allows remote malicious users to inject arbitrary web script or HTML via the query string to cgi-bin/status.cgi.
Icinga Icinga
Opensuse Leap 42.2
Opensuse Project Leap 42.1
6.8
CVSSv2
CVE-2016-8693
Double free vulnerability in the mem_close function in jas_stream.c in JasPer prior to 1.900.10 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image to the imginfo command.
Jasper Project Jasper
Opensuse Opensuse 13.2
Fedoraproject Fedora 23
7.5
CVSSv2
CVE-2017-6542
The ssh_agent_channel_data function in PuTTY prior to 0.68 allows remote malicious users to have unspecified impact via a large length value in an agent protocol message and leveraging the ability to connect to the Unix-domain socket representing the forwarded agent connection, w...
Putty Putty
Opensuse Project Leap 42.1
Opensuse Leap 42.2
1 EDB exploit
5
CVSSv2
CVE-2017-6594
The transit path validation code in Heimdal prior to 7.3 might allow malicious users to bypass the capath policy protection mechanism by leveraging failure to add the previous hop realm to the transit path of issued tickets.
Heimdal Project Heimdal
Opensuse Leap 42.2
Opensuse Leap 42.3
9.3
CVSSv2
CVE-2009-0749
Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and previous versions allows context-dependent malicious users to cause a denial of service (application crash) via a crafted GIF image that causes the realloc functio...
Optipng Project Optipng
Suse Linux Enterprise 9-11
Opensuse Opensuse
4.6
CVSSv2
CVE-2010-4661
udisks prior to 1.0.3 allows a local user to load arbitrary Linux kernel modules.
Udisks Project Udisks
Debian Debian Linux 8.0
Fedoraproject Fedora
Opensuse Opensuse 11.3
Opensuse Opensuse 11.4
Redhat Enterprise Linux 6.0
6.8
CVSSv2
CVE-2015-6031
Buffer overflow in the IGDstartelt function in igd_desc_parse.c in the MiniUPnP client (aka MiniUPnPc) prior to 1.9.20150917 allows remote UPNP servers to cause a denial of service (application crash) and possibly execute arbitrary code via an "oversized" XML element na...
Miniupnp Project Miniupnpc 1.9
Miniupnp Project Miniupnpc
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Opensuse Leap 42.1
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
4.3
CVSSv2
CVE-2019-14274
MCPP 2.7.2 has a heap-based buffer overflow in the do_msg() function in support.c.
Mcpp Project Mcpp 2.7.2
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
4.3
CVSSv2
CVE-2019-20053
An invalid memory address dereference exists in the canUnpack function in p_mach.cpp in UPX 3.95 via a crafted Mach-O file.
Upx Project Upx 3.95
Opensuse Backports Sle-15
Opensuse Leap 15.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38002
CVE-2006-4304
CVE-2024-4336
CVE-2024-33437
CVE-2024-4340
CVE-2024-27956
privilege
insecure direct object reference
XSS
item search icon">CVE-2024-25938
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »